$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa File: AS142346.roa (raw, json) Hash identifier: owsdhyA83K8wVfsYQ2DE7U426LWfqhD5yxpgLMnGIsk= Subject key identifier: 1F:C2:3B:07:97:B1:27:57:AE:64:8B:83:9C:91:3B:1F:41:AF:AA:88 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4CEFA2A3C09FFC88B5666CAD5A2C8055F4C642B6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa Signing time: Thu 14 Nov 2024 07:00:00 +0000 ROA not before: Thu 14 Nov 2024 06:55:00 +0000 ROA not after: Thu 13 Nov 2025 07:00:00 +0000 asID: 142346 IP address blocks: 2001:df1:cc40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ef:a2:a3:c0:9f:fc:88:b5:66:6c:ad:5a:2c:80:55:f4:c6:42:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 06:55:00 2024 GMT Not After : Nov 13 07:00:00 2025 GMT Subject: CN=1FC23B0797B12757AE648B839C913B1F41AFAA88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:ee:ba:34:e0:c4:50:7d:70:e3:ef:6e:ba: de:8b:51:1c:b3:65:4d:c1:bf:d6:36:4b:97:24:3f: a4:87:34:63:ef:4e:c0:8b:b6:b9:de:fd:09:9f:e0: 8c:d1:c6:52:e0:b3:98:b2:37:d3:f8:8e:1c:6a:66: 58:5e:27:03:a5:e3:e7:f5:32:de:f1:63:d2:ed:e1: cc:61:e9:4e:40:e0:34:13:d7:63:a4:a8:91:31:7e: 4e:33:ba:de:8d:46:42:4b:19:36:50:69:3a:45:41: 59:d0:56:1d:a5:2d:4f:65:42:d6:bd:ca:89:d7:35: 18:44:1a:17:49:dc:67:0c:27:61:45:86:dc:fc:c1: 3f:ee:54:d4:59:6d:cd:79:e2:a1:f0:0b:1a:30:4f: f0:af:0b:00:02:23:22:80:df:e9:4c:b6:e2:ff:b0: 3d:93:73:4f:9c:2c:98:76:75:c8:6b:f5:80:54:d1: 10:46:8d:82:eb:2c:67:cf:60:4b:b4:7f:e8:f9:39: 11:b6:8c:d9:69:60:2b:17:b5:67:95:1c:4a:82:cd: 7e:82:cb:0c:db:84:d8:91:cf:8e:6b:7b:fc:43:73: 61:f7:46:b3:af:9a:7e:ba:22:6e:14:8c:58:a5:47: fd:24:04:49:41:9d:e0:ee:45:6a:8e:62:40:4f:b2: fe:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C2:3B:07:97:B1:27:57:AE:64:8B:83:9C:91:3B:1F:41:AF:AA:88 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:cc40::/48 Signature Algorithm: sha256WithRSAEncryption 36:e1:66:a7:6e:a8:8d:92:db:0a:74:66:06:0f:bb:a8:68:df: b5:d3:e0:fd:c7:fb:b7:2a:81:21:e0:d1:b8:a8:2a:fa:b8:5c: ff:eb:b2:d3:e9:bd:ce:36:14:91:79:19:2d:c4:30:0c:16:58: 3d:fc:8a:4b:55:1f:52:8b:38:ad:ff:3b:ee:ca:08:43:61:69: 4c:bb:40:80:91:c0:36:6b:b0:b3:32:5e:40:e9:78:4e:e5:11: 1f:aa:e1:3c:4c:62:9e:e9:72:a9:f3:71:40:d4:a2:33:e3:35: 83:c9:44:06:97:86:12:00:30:dd:5e:cc:1b:e3:cd:04:f1:01: e7:e7:b3:6c:ad:8f:0d:cf:88:17:bb:60:be:fb:08:8b:da:38: 36:91:43:6e:af:39:49:dc:a4:42:20:ff:a2:75:99:10:9b:4e: 6b:d1:1d:7b:17:ed:3a:1a:90:91:cc:86:76:37:c7:44:6f:e6: 55:45:d8:1d:0a:50:f0:68:dd:87:67:c5:df:8b:65:7b:fa:a0: 9f:d0:19:e6:8e:e3:a8:75:a4:06:b9:07:b8:4e:58:06:0c:22: 69:1f:b5:b1:ba:78:4c:fe:97:3b:5b:b3:2c:40:fc:96:08:05: b0:1e:89:4d:80:e5:e2:f5:95:78:85:af:b8:1c:79:65:14:1c: 63:ae:22:cb -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUTO+io8Cf/Ii1ZmytWiyAVfTGQrYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExNDA2NTUwMFoX DTI1MTExMzA3MDAwMFowMzExMC8GA1UEAxMoMUZDMjNCMDc5N0IxMjc1N0FFNjQ4 QjgzOUM5MTNCMUY0MUFGQUE4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWs7ro04MRQfXDj72663otRHLNlTcG/1jZLlyQ/pIc0Y+9OwIu2ud79CZ/g jNHGUuCzmLI30/iOHGpmWF4nA6Xj5/Uy3vFj0u3hzGHpTkDgNBPXY6SokTF+TjO6 3o1GQksZNlBpOkVBWdBWHaUtT2VC1r3Kidc1GEQaF0ncZwwnYUWG3PzBP+5U1Flt zXniofALGjBP8K8LAAIjIoDf6Uy24v+wPZNzT5wsmHZ1yGv1gFTREEaNgussZ89g S7R/6Pk5EbaM2WlgKxe1Z5UcSoLNfoLLDNuE2JHPjmt7/ENzYfdGs6+afroibhSM WKVH/SQESUGd4O5Fao5iQE+y/kECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQfwjsH l7EnV65ki4OckTsfQa+qiDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHMQDANBgkqhkiG9w0BAQsFAAOCAQEANuFmp26ojZLbCnRm Bg+7qGjftdPg/cf7tyqBIeDRuKgq+rhc/+uy0+m9zjYUkXkZLcQwDBZYPfyKS1Uf Uos4rf877soIQ2FpTLtAgJHANmuwszJeQOl4TuURH6rhPExinulyqfNxQNSiM+M1 g8lEBpeGEgAw3V7MG+PNBPEB5+ezbK2PDc+IF7tgvvsIi9o4NpFDbq85SdykQiD/ onWZEJtOa9EdexftOhqQkcyGdjfHRG/mVUXYHQpQ8Gjdh2fF34tle/qgn9AZ5o7j qHWkBrkHuE5YBgwiaR+1sbp4TP6XO1uzLED8lggFsB6JTYDl4vWVeIWvuBx5ZRQc Y64iyw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:28 2024 by rpki-client on console-ams.rpki-client.org